$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/DF4A9778E56111EBB6ADAC1FC4F9AE02.roa File: DF4A9778E56111EBB6ADAC1FC4F9AE02.roa (raw, json) Hash identifier: 5JbfjmQAdiDF+GCUG6f8XFUd66i1OEDkHsAU9939sOs= Subject key identifier: 7E:F5:93:76:AE:F1:AA:F8:9B:6B:F7:7A:09:99:AB:8C:05:30:7D:F2 Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1A6D Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/DF4A9778E56111EBB6ADAC1FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:35:34 +0000 ROA not before: Thu 08 Jan 2026 17:13:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24319 IP address blocks: 60.254.128.0/24 maxlen: 24 60.254.153.0/24 maxlen: 24 125.56.209.0/24 maxlen: 24 125.56.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 16:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6765 (0x1a6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A, serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Jan 8 17:13:50 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a486f6-f776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e4:d9:b3:38:6a:b3:69:3e:6a:22:ab:7a:6d: ae:cd:69:b3:05:5c:5d:14:c1:dd:fc:19:e0:a7:b0: 5c:dc:ee:0d:c0:88:ba:ae:60:e0:79:d9:7f:e9:f7: f3:cb:05:86:63:9c:4d:68:c1:3e:65:fe:f1:49:4f: e8:3f:7c:b0:78:58:91:29:78:d3:94:df:69:01:2b: 55:c3:74:49:e5:d7:94:dc:ab:97:83:7c:a9:3c:00: 1f:77:33:79:90:06:9c:47:c8:6a:14:8a:44:6a:11: ed:f4:0b:23:9a:ce:a5:60:64:c3:93:10:0e:6b:58: c8:ec:75:21:45:17:91:cd:cf:5a:7b:ee:8c:7c:e0: 81:26:f8:42:67:d3:66:ff:11:9d:4f:05:45:5d:16: c5:c9:3e:36:eb:7d:f9:ad:3d:a6:b6:ca:7c:af:ff: 39:72:68:7a:ad:a6:66:9d:fc:7d:9f:67:b9:29:02: dc:67:11:b0:dc:21:4e:4b:22:0a:ef:9d:85:f8:f7: e6:f3:ff:0c:b6:89:f8:91:3e:10:ff:7a:60:3c:3a: fb:97:06:06:90:8d:a7:6d:d8:72:dc:3e:9f:a3:c0: 10:38:f2:0e:85:0d:d3:eb:d5:d1:94:48:08:c1:1a: d0:0a:d7:b1:d4:41:c6:16:aa:f8:b0:93:d5:25:88: 74:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:F5:93:76:AE:F1:AA:F8:9B:6B:F7:7A:09:99:AB:8C:05:30:7D:F2 X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/DF4A9778E56111EBB6ADAC1FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 60.254.128.0/24 60.254.153.0/24 125.56.209.0/24 125.56.217.0/24 Signature Algorithm: sha256WithRSAEncryption 43:00:50:14:0c:35:5b:6c:28:1a:68:17:04:4c:0d:b0:9a:63: 0f:46:01:43:cf:18:c8:d5:bb:1a:21:1e:ea:e3:b9:89:02:99: 1c:cd:e8:fa:9b:ea:d0:5d:79:dc:72:b5:53:c0:e2:e2:bb:15: e7:ed:af:08:87:04:9c:00:e1:10:8c:c2:43:93:45:cb:24:56: a7:60:d3:fa:13:d7:17:b0:a3:23:58:b2:bf:3a:ed:16:a2:11: d3:18:06:49:2b:c5:5f:51:3d:48:a8:59:cb:c1:7c:35:f4:27: 6e:9a:ca:5e:30:8f:81:1d:d7:ba:44:b2:90:6a:ea:40:5b:62: 0b:df:c8:56:91:5d:1d:7a:a4:89:77:ed:89:8a:b7:89:0e:71: e1:be:a7:76:5c:32:c6:a4:d0:96:fd:d8:29:e0:ab:57:43:80: ff:93:23:45:d4:86:ad:ea:b1:7c:ff:14:04:84:13:8b:76:f1: 24:db:04:5e:2c:06:1c:84:84:14:ee:80:07:b6:d2:f1:d5:44: e2:e0:2d:f8:dc:ff:25:d5:23:99:fe:9b:d1:3c:54:52:62:ce: 3e:89:7c:2a:18:14:f3:c2:a0:1f:31:64:7e:a8:a7:2a:28:3b: 51:0d:16:f6:63:4f:58:c6:12:91:58:2e:60:41:28:f6:42:68: e4:1f:3f:2f -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICGm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjYwMTA4MTcxMzUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODZmNi1mNzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuTZszhqs2k+aiKrem2uzWmzBVxdFMHd/Bngp7Bc3O4NwIi6rmDgedl/6ffz ywWGY5xNaME+Zf7xSU/oP3yweFiRKXjTlN9pAStVw3RJ5deU3KuXg3ypPAAfdzN5 kAacR8hqFIpEahHt9Asjms6lYGTDkxAOa1jI7HUhRReRzc9ae+6MfOCBJvhCZ9Nm /xGdTwVFXRbFyT426335rT2mtsp8r/85cmh6raZmnfx9n2e5KQLcZxGw3CFOSyIK 752F+Pfm8/8Mton4kT4Q/3pgPDr7lwYGkI2nbdhy3D6fo8AQOPIOhQ3T69XRlEgI wRrQCtex1EHGFqr4sJPVJYh0vwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFH71k3au 8ar4m2v3egmZq4wFMH3yMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvREY0QTk3NzhF NTYxMTFFQkI2QURBQzFGQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAPP6AAwQAPP6ZAwQAfTjRAwQAfTjZMA0GCSqGSIb3DQEBCwUAA4IB AQBDAFAUDDVbbCgaaBcETA2wmmMPRgFDzxjI1bsaIR7q47mJApkczej6m+rQXXnc crVTwOLiuxXn7a8IhwScAOEQjMJDk0XLJFanYNP6E9cXsKMjWLK/Ou0WohHTGAZJ K8VfUT1IqFnLwXw19CdumspeMI+BHde6RLKQaupAW2IL38hWkV0deqSJd+2JireJ DnHhvqd2XDLGpNCW/dgp4KtXQ4D/kyNF1Iat6rF8/xQEhBOLdvEk2wReLAYchIQU 7oAHttLx1UTi4C343P8l1SOZ/pvRPFRSYs4+iXwqGBTzwqAfMWR+qKcqKDtRDRb2 Y09YxhKRWC5gQSj2QmjkHz8v -----END CERTIFICATE-----Generated at Sat Mar 7 20:51:16 2026 by rpki-client